Open
Cached
·
just now
89/100
SECURITY SCORE
Detected Technologies
Let's Encrypt
Google AdSense
Google Maps
Highspot
Dreamdata
Google Tag Manager
G2
Spotify
Forsta
PathFactory
AppNexus (Xandr)
GrowthBook
HubSpot Forms
Google DoubleClick
Google Analytics
Google Conversion Tracking
6sense
New Relic
Google Static File Front End
Google API JS Client
Google Fonts
Vidyard
Wistia
Twitter
Hotjar
LinkedIn
HubSpot CMS
Zendesk
ZoomInfo
HubSpot Analytics
unpkg
Google Search
Adobe Marketo
Facebook
Amazon S3
OneTrust
Google Optimize
Akamai
HubSpot
YouTube
Microsoft Clarity
SmartRecruiters
HubSpot Live Chat
Sentry
jsDelivr
Google Cloud
Certificate Information
Subject
CN=binaryfountain.com
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
April 13, 2026
Valid Until
July 12, 2026
69 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
7E:39:37:93:5C:CF:ED:C3:6A:E4:81:7F:77:04:DD:16:A5:E1:3B:0D:3E:24:40:E8:1E:5E:43:1E:48:D0:97:D9
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=300
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Good
nosniff
Referrer-Policy
Good
strict-origin-when-cross-origin
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Improve CSP by adding more specific directives and removing 'unsafe-inline'
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Configured
(Restricts certificate issuance)
Current Issuer
Authorized
(Matches CAA policy)
Authorized CAs
Recommendations
- • Consider using critical flag (flags=128) for stricter CAA enforcement
- • Consider adding 'iodef' records to receive notifications about unauthorized certificate issuance attempts
- • Consider adding 'issuewild' records to control wildcard certificate issuance
Subject Alternative Names
37 domains
confirmit.com
www.confirmit.com
binaryfountain.com
www.binaryfountain.com
focusvision.com
www.focusvision.com
fontora.de
www.fontora.de
demo.forsta.com
forsta.com
help.forsta.com
legal.forsta.com
www.forsta.com
healthcareconsulting.com
hospitalconsulting.com
www.hospitalconsulting.com
moreheadmsp.net
www.moreheadmsp.net
hxconference.pgforsta.com
pgforsta.com
www.pgforsta.com
demo.pressganey.com
help.pressganey.com
helpandtraining.pressganey.com
hxconference.pressganey.com
legal.pressganey.com
media-kit-awards.pressganey.com
pressganey.com
workforceresources.pressganey.com
www.pressganey.com
pressganie.biz
www.pressganie.biz
rioseo.com
www.rioseo.com
www.soyringconsulting.com
sphanalytics.com
www.sphanalytics.com
Other domains in certificate